VYPR
Unrated severityNVD Advisory· Published Aug 20, 2012· Updated Jun 16, 2026

CVE-2012-3456

CVE-2012-3456

Description

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3455, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • Calligra/Calligra10 versions
    cpe:2.3:a:calligra:calligra:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:calligra:calligra:*:*:*:*:*:*:*:*range: <=2.4.3
    • cpe:2.3:a:calligra:calligra:2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4:beta2:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4:beta3:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4:beta4:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4:beta6:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4:beta7:*:*:*:*:*:*
    • cpe:2.3:a:calligra:calligra:2.4:rc2:*:*:*:*:*:*
  • KDE/Calligrallm-create
    Range: <=2.4.3

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.